 Spencer McIntyre
|
8dd0347337
|
Fix a reference to the old option name
|
2021-08-10 09:36:42 -04:00 |
|
|
adfoster-r7
|
b9d2f30bbd
|
Update psexec module to use SMBSHARE option name for consistency
|
2021-08-10 13:17:57 +01:00 |
|
|
Tim W
|
d1fa2e857d
|
fix #15528, fix powershell command length in shell_to_meterpreter
|
2021-08-10 12:08:50 +01:00 |
|
|
Jacob Baines
|
b3dbf7c0e9
|
Altered the approach in check
|
2021-08-09 22:05:16 -04:00 |
|
|
Grant Willcox
|
55404ff29f
|
Further fixes from review and further touch up edits
|
2021-08-09 14:23:05 -05:00 |
|
|
Grant Willcox
|
c03ca1d39d
|
Fix RuboCop error
|
2021-08-09 12:21:07 -05:00 |
|
|
Alan Foster
|
c8cc111318
|
Rename class.parents to class.module_parents
|
2021-08-09 12:16:13 -05:00 |
|
|
Grant Willcox
|
f8d838bba2
|
Fix first round of comments from the review process
|
2021-08-09 12:13:27 -05:00 |
|
|
Christophe De La Fuente
|
07c9350733
|
Land #15430, Support for SSH pivoting
|
2021-08-09 18:34:08 +02:00 |
|
|
Grant Willcox
|
8517286e89
|
RuboCop fix to description to make it happy
|
2021-08-09 10:05:21 -05:00 |
|
|
Grant Willcox
|
838142362c
|
Apply first round of updates from review comments to improve explanations of the vulnerability and fix some minor issues
|
2021-08-09 09:59:09 -05:00 |
|
|
Spencer McIntyre
|
b406257e6b
|
Land #15524, fix a localization issue
|
2021-08-09 09:03:56 -04:00 |
|
|
pingport80
|
bc23658123
|
minor sytling changes
|
2021-08-09 15:53:58 +05:30 |
|
|
Jacob Baines
|
7703810c4a
|
Fixed rubocop issue
|
2021-08-07 06:59:50 -04:00 |
|
|
Jacob Baines
|
0e41a0e81e
|
Addressed all but one review items
|
2021-08-07 06:46:49 -04:00 |
|
|
Jacob Baines
|
8d699c0c4e
|
Addressed various review comments
|
2021-08-06 14:55:50 -04:00 |
|
|
pingport80
|
815ecd27c3
|
minor changes
|
2021-08-06 22:35:05 +05:30 |
|
|
pingport80
|
d2c2f66374
|
fix localization issue in linux_enum_network
|
2021-08-06 22:13:25 +05:30 |
|
|
Grant Willcox
|
ade653f0bf
|
Final fixup edits to change the timeout value to be an advanced option and also to use send_req_cgi
|
2021-08-05 13:10:24 -05:00 |
|
|
kensh1ro
|
a4a2a4d5cc
|
Add fix for generating random valid C keywords
|
2021-08-05 18:26:58 +03:00 |
|
|
Jacob Baines
|
f851faf2e4
|
Initial commit for Canon driver exploit
|
2021-08-05 11:17:45 -04:00 |
|
|
Grant Willcox
|
00cfdc4f17
|
Use Faker to generate a fake app name, add in option to specify timeout to server, and also fix Alan's remaining review comments
|
2021-08-05 09:46:34 -05:00 |
|
|
Jacob Baines
|
4cff38b9c2
|
Fixed rubocop issues
|
2021-08-04 16:41:20 -04:00 |
|
|
Jacob Baines
|
699c53151b
|
Fixed msftidy issues
|
2021-08-04 16:14:27 -04:00 |
|
|
Jacob Baines
|
e6c48db072
|
Initial version of CVE-2021-35449
|
2021-08-04 16:08:43 -04:00 |
|
|
kensh1ro
|
87e7718a25
|
Adding a dynamic way to fetch syscalls
|
2021-08-04 09:31:43 +03:00 |
|
|
Grant Willcox
|
0d7d5ab93f
|
Switch over to Rex::MIME::Message to use our built in mixins, and also fix last remaining review comments
|
2021-08-02 11:17:26 -05:00 |
|
|
kensh1ro
|
907be4418e
|
Added module syscall_inject with documentation
|
2021-08-01 19:22:32 +03:00 |
|
|
Grant Willcox
|
27f70af1b3
|
Fix up some of the mistakes wvu pointed out
|
2021-07-30 15:28:10 -05:00 |
|
|
Jack Heysel
|
29b193406e
|
Fix for file clean up in the Cisco Hyperflex file upload RCE module
|
2021-07-30 14:59:52 -04:00 |
|
|
Grant Willcox
|
5b3bbf7f36
|
Fix up tabs formatting issue that was causing RuboCop to complain. Silly RuboCop :)
|
2021-07-30 12:17:46 -05:00 |
|
|
Grant Willcox
|
3427571887
|
Push up working CVE-2019-11580 exploit and associated documentation
|
2021-07-30 12:07:12 -05:00 |
|
|
Simon Janusz
|
7260b220a2
|
Land #15498, Update postgres schema dump
|
2021-07-30 12:01:16 +01:00 |
|
|
adfoster-r7
|
6a00b2fa43
|
Update postgres schema dump
|
2021-07-29 19:41:49 +01:00 |
|
|
Spencer McIntyre
|
dba3db741a
|
Land #15462, [CVE-2021-36934] HiveNightmare
|
2021-07-29 12:53:48 -04:00 |
|
|
Spencer McIntyre
|
202f291d30
|
Land #15497, Add Pi-Hole DHCP Module Side Effects
|
2021-07-29 12:37:21 -04:00 |
|
|
adfoster-r7
|
951809e164
|
Land #15491, add module stability notes
|
2021-07-29 17:24:42 +01:00 |
|
|
space-r7
|
d69fb22699
|
add side effects to pihole dhcp module
|
2021-07-29 11:23:01 -05:00 |
|
|
space-r7
|
809081bc5f
|
Land #15279, add Pi-Hole lpe
|
2021-07-29 11:15:17 -05:00 |
|
|
space-r7
|
0561ae978f
|
fix typos, pihole version in docs
|
2021-07-29 11:13:58 -05:00 |
|
|
Spencer McIntyre
|
36cc2fd7e5
|
Rename an option and update docs for HiveNightmare
|
2021-07-29 12:07:56 -04:00 |
|
|
Yann Castel
|
fb99af1152
|
Add post module for HiveNightmare
correct CVE id
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
use of vars_get + delete payload after use
initial commit
Update hivenightmare_windows_sam_leak.rb
using railgun to read files + specific index option
Update hivenightmare_windows_sam_leak.rb
post module + add description + add documentation
Delete wp_plugin_modern_events_calendar_rce.rb
Delete wp_plugin_modern_events_calendar_rce.md
add scenario in doc
Update windows_sam_hivenightmare.md
Update windows_sam_hivenightmare.rb
Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
minor changes
msftidy
Update modules/post/windows/gather/credentials/windows_sam_hivenightmare.rb
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
|
2021-07-29 11:54:31 -04:00 |
|
|
dwelch-r7
|
15edd30fa2
|
Land #15359, Fix #15218 authentication issue in ssh_login_pubkey
|
2021-07-29 16:27:35 +01:00 |
|
|
Spencer McIntyre
|
453172ae62
|
Land #15163, CVE-2021-31802 - R7000 RCE
|
2021-07-29 09:26:58 -04:00 |
|
|
Spencer McIntyre
|
9934f5d5ab
|
Remove a useless variable assignment for rubocop
|
2021-07-29 08:54:07 -04:00 |
|
|
Grant Willcox
|
a518fcac98
|
Add in timeout to 10th and final request to prevent module from throwing errors like it isn't working when it really is
|
2021-07-28 11:32:47 -05:00 |
|
|
cgranleese-r7
|
56510a2e8e
|
Updates some notes on modules that weren't passing tests due to new rubocop rule
|
2021-07-28 16:20:02 +01:00 |
|
|
sjanusz
|
1288e85b6b
|
Improved exception handling
|
2021-07-28 10:22:15 +01:00 |
|
|
sjanusz
|
c63ef142c5
|
Update local exploit suggester to handle nil targets
|
2021-07-28 10:22:15 +01:00 |
|
|
Grant Willcox
|
a13f6a35dc
|
Use fail_with to properly handle the case where the target isn't the one we support
|
2021-07-27 13:00:44 -05:00 |
|